zaknafane Posted January 3, 2009 Report Share Posted January 3, 2009 utorrent is freezing when i am downloadingLogfile of Trend Micro HijackThis v2.0.2Scan saved at 11:34:18 AM, on 1/3/2009Platform: Windows XP SP3 (WinNT 5.01.2600)MSIE: Internet Explorer v6.00 SP3 (6.00.2900.5512)Boot mode: NormalRunning processes:D:\WINDOWS\System32\smss.exeD:\WINDOWS\system32\winlogon.exeD:\WINDOWS\system32\services.exeD:\WINDOWS\system32\lsass.exeD:\WINDOWS\system32\svchost.exeD:\WINDOWS\System32\svchost.exeD:\WINDOWS\Explorer.EXED:\WINDOWS\system32\spoolsv.exeD:\Program Files\Avira\AntiVir PersonalEdition Classic\sched.exeD:\Program Files\Avira\AntiVir PersonalEdition Classic\avguard.exeD:\WINDOWS\system32\nvsvc32.exeD:\Program Files\Spyware Terminator\sp_rsser.exeD:\WINDOWS\system32\wscntfy.exeD:\WINDOWS\SOUNDMAN.EXED:\Program Files\Avira\AntiVir PersonalEdition Classic\avgnt.exeD:\WINDOWS\system32\RUNDLL32.EXED:\Program Files\Spyware Terminator\SpywareTerminatorShield.exeD:\Program Files\Belkin\Belkin 802.11g Wireless PCI Card Configuration Utility\utility.exeD:\Program Files\Dynex Enhanced G USB Network Adapter\DynexWCUI.exeD:\Documents and Settings\Jack\Application Data\mjusbsp\magicJack.exeD:\WINDOWS\System32\svchost.exeD:\Program Files\Mozilla Firefox\firefox.exeD:\Program Files\Yahoo!\Messenger\YahooMessenger.exeD:\Program Files\Internet Explorer\iexplore.exeD:\Program Files\Internet Explorer\iexplore.exeD:\Program Files\Trend Micro\HijackThis\HijackThis.exeR3 - URLSearchHook: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - (no file)O2 - BHO: Yahoo! Toolbar Helper - {02478D38-C3F9-4efb-9B51-7695ECA05670} - (no file)O2 - BHO: Adobe PDF Link Helper - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - D:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dllO2 - BHO: Yahoo! IE Services Button - {5BAB4B5B-68BC-4B02-94D6-2FC0DE4A7897} - D:\Program Files\Yahoo!\Common\yiesrvc.dllO2 - BHO: Java Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - D:\Program Files\Java\jre6\bin\ssv.dllO2 - BHO: Java Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - D:\Program Files\Java\jre6\bin\jp2ssv.dllO4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE D:\WINDOWS\system32\NvCpl.dll,NvStartupO4 - HKLM\..\Run: [nwiz] nwiz.exe /installO4 - HKLM\..\Run: [soundMan] SOUNDMAN.EXEO4 - HKLM\..\Run: [avgnt] "D:\Program Files\Avira\AntiVir PersonalEdition Classic\avgnt.exe" /minO4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "D:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe"O4 - HKLM\..\Run: [NeroFilterCheck] D:\WINDOWS\system32\NeroCheck.exeO4 - HKLM\..\Run: [sunJavaUpdateSched] "D:\Program Files\Java\jre6\bin\jusched.exe"O4 - HKLM\..\Run: [ZoneAlarm Client] "D:\Program Files\Zone Labs\ZoneAlarm\zlclient.exe"O4 - HKLM\..\Run: [NvMediaCenter] RUNDLL32.EXE D:\WINDOWS\system32\NvMcTray.dll,NvTaskbarInitO4 - HKLM\..\Run: [spywareTerminator] "D:\Program Files\Spyware Terminator\SpywareTerminatorShield.exe"O4 - HKCU\..\Run: [cdloader] "D:\Documents and Settings\Jack\Application Data\mjusbsp\cdloader2.exe" MAGICJACKO4 - HKCU\..\Run: [CurseClient] D:\Program Files\Curse\CurseClient.exe -silentO4 - Global Startup: Belkin 802.11g Wireless PCI Card Configuration Utility.lnk = ?O4 - Global Startup: Dynex Wireless Networking Utility.lnk = D:\Program Files\Dynex Enhanced G USB Network Adapter\DynexWCUI.exeO9 - Extra button: Yahoo! Services - {5BAB4B5B-68BC-4B02-94D6-2FC0DE4A7897} - D:\Program Files\Yahoo!\Common\yiesrvc.dllO9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - D:\WINDOWS\Network Diagnostic\xpnetdiag.exeO9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - D:\WINDOWS\Network Diagnostic\xpnetdiag.exeO9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - D:\Program Files\Messenger\msmsgs.exeO9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - D:\Program Files\Messenger\msmsgs.exeO10 - Unknown file in Winsock LSP: d:\windows\system32\nwprovau.dllO16 - DPF: {30528230-99f7-4bb4-88d8-fa1d4f56a2ab} (Installation Support) - D:\Program Files\Yahoo!\Common\Yinsthelper.dllO16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} (WUWebControl Class) - http://update.microsoft.com/windowsupdate/v6/V5Controls/en/x86/client/wuweb_site.cab?1227331338281O17 - HKLM\System\CCS\Services\Tcpip\..\{BA6419ED-A629-4E62-8201-5E4573B0A375}: NameServer = 68.87.77.130,68.87.66.196O23 - Service: Avira AntiVir Personal - Free Antivirus Scheduler (AntiVirScheduler) - Avira GmbH - D:\Program Files\Avira\AntiVir PersonalEdition Classic\sched.exeO23 - Service: Avira AntiVir Personal - Free Antivirus Guard (AntiVirService) - Avira GmbH - D:\Program Files\Avira\AntiVir PersonalEdition Classic\avguard.exeO23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - D:\WINDOWS\system32\nvsvc32.exeO23 - Service: Spyware Terminator Realtime Shield Service (sp_rssrv) - Crawler.com - D:\Program Files\Spyware Terminator\sp_rsser.exeO23 - Service: TrueVector Internet Monitor (vsmon) - Zone Labs, LLC - D:\WINDOWS\system32\ZoneLabs\vsmon.exeplease help Link to comment Share on other sites More sharing options...
moogly Posted January 3, 2009 Report Share Posted January 3, 2009 Can you post a PE log please to complete your post ?Tutorial: http://forum.utorrent.com/viewtopic.php?id=29748DONT FORGET to select utorrent.exe and enable DLL mode (ctrl+D) in PE.Anyway you got ZA, surely the culprit. Frequent issue. Link to comment Share on other sites More sharing options...
zaknafane Posted January 3, 2009 Author Report Share Posted January 3, 2009 ill remove ZA cus i dont use it anyways, gets too annoying. if that doesnt work ill post the PE. The PE will save a file after the lockup right, and thats the one I post here? Link to comment Share on other sites More sharing options...
moogly Posted January 3, 2009 Report Share Posted January 3, 2009 Yes copy/paste here the .log or .txt given by PE (like HJT). Link to comment Share on other sites More sharing options...
zaknafane Posted January 4, 2009 Author Report Share Posted January 4, 2009 here's the PE txt file. i did take ZA off the computer completely. still no difference.Process PID CPU Description Company NameSystem Idle Process 0 77.69 Interrupts n/a 0.77 Hardware Interrupts DPCs n/a 0.77 Deferred Procedure Calls System 4 smss.exe 620 Windows NT Session Manager Microsoft Corporation csrss.exe 676 Client Server Runtime Process Microsoft Corporation winlogon.exe 700 Windows NT Logon Application Microsoft Corporation services.exe 744 Services and Controller app Microsoft Corporation svchost.exe 920 Generic Host Process for Win32 Services Microsoft Corporation svchost.exe 988 Generic Host Process for Win32 Services Microsoft Corporation svchost.exe 1028 Generic Host Process for Win32 Services Microsoft Corporation wscntfy.exe 1216 Windows Security Center Notification App Microsoft Corporation wuauclt.exe 1748 Windows Update Automatic Updates Microsoft Corporation svchost.exe 1120 Generic Host Process for Win32 Services Microsoft Corporation svchost.exe 1152 Generic Host Process for Win32 Services Microsoft Corporation spoolsv.exe 1372 Spooler SubSystem App Microsoft Corporation sched.exe 1448 Antivirus Scheduler Avira GmbH avguard.exe 1580 Antivirus On-Access Service Avira GmbH nvsvc32.exe 1764 NVIDIA Driver Helper Service, Version 178.13 NVIDIA Corporation sp_rsser.exe 1860 Spyware Terminator Realtime Shield Service Crawler.com alg.exe 1556 Application Layer Gateway Service Microsoft Corporation svchost.exe 2740 Generic Host Process for Win32 Services Microsoft Corporation lsass.exe 756 LSA Shell (Export Version) Microsoft Corporationexplorer.exe 1832 Windows Explorer Microsoft Corporation soundman.exe 260 Realtek Sound Manager Realtek Semiconductor Corp. avgnt.exe 264 Antivirus System Tray Tool Avira GmbH rundll32.exe 376 Run a DLL as an App Microsoft Corporation SpywareTerminatorShield.Exe 384 Spyware Terminator Realtime Shield Crawler.com utility.exe 652 WLANSTAT CONFIGURATION UTILITY Belkin DynexWCUI.exe 1632 Dynex Wireless Client Utility Dynex firefox.exe 2292 Firefox Mozilla Corporation procexp.exe 2920 Sysinternals Process Explorer Sysinternals - www.sysinternals.com uTorrent.exe 2148 20.77 µTorrent BitTorrent, Inc.mjsetup.exe 3396 MJSetupHelpers magicJack L.P.magicJack.exe 2840 magicJack USB Softphone magicJack L.P.Process: uTorrent.exe Pid: 2148Name Description Company Name VersionACTIVEDS.dll ADs Router Layer DLL Microsoft Corporation 5.01.2600.5512adsldpc.dll ADs LDAP Provider C DLL Microsoft Corporation 5.01.2600.5512ADVAPI32.dll Advanced Windows 32 Base API Microsoft Corporation 5.01.2600.5512ATL.DLL ATL Module for Windows XP (Unicode) Microsoft Corporation 3.05.2284.0001CLBCATQ.DLL Microsoft Corporation 2001.12.4414.0700COMCTL32.dll User Experience Controls Library Microsoft Corporation 6.00.2900.5512comdlg32.dll Common Dialogs DLL Microsoft Corporation 6.00.2900.5512COMRes.dll Microsoft Corporation 2001.12.4414.0700credui.dll Credential Manager User Interface Microsoft Corporation 5.01.2600.5512CRYPT32.dll Crypto API32 Microsoft Corporation 5.131.2600.5512ctype.nls DnsApi.dll DNS Client API DLL Microsoft Corporation 5.01.2600.5512dot3api.dll 802.3 Autoconfiguration API Microsoft Corporation 5.01.2600.5512dot3dlg.dll 802.3 UI Helper Microsoft Corporation 5.01.2600.5512eappcfg.dll Eap Peer Config Microsoft Corporation 5.01.2600.5512eappprxy.dll Microsoft EAPHost Peer Client DLL Microsoft Corporation 5.01.2600.5512GDI32.dll GDI Client DLL Microsoft Corporation 5.01.2600.5512hnetcfg.dll Home Networking Configuration Manager Microsoft Corporation 5.01.2600.5512Iphlpapi.dll IP Helper API Microsoft Corporation 5.01.2600.5512kernel32.dll Windows NT BASE API Client DLL Microsoft Corporation 5.01.2600.5512locale.nls MPRAPI.dll Windows NT MP Router Administration DLL Microsoft Corporation 5.01.2600.5512MSASN1.dll ASN.1 Runtime APIs Microsoft Corporation 5.01.2600.5512MSVCP60.dll Microsoft ® C++ Runtime Library Microsoft Corporation 6.02.3104.0000msvcrt.dll Windows NT CRT DLL Microsoft Corporation 7.00.2600.5512mswsock.dll Microsoft Windows Sockets 2.0 Service Provider Microsoft Corporation 5.01.2600.5512netapi32.dll Net Win32 API DLL Microsoft Corporation 5.01.2600.5694netshell.dll Network Connections Shell Microsoft Corporation 5.01.2600.5512ntdll.dll NT Layer DLL Microsoft Corporation 5.01.2600.5512ole32.dll Microsoft OLE for Windows Microsoft Corporation 5.01.2600.5512oleaut32.dll Microsoft Corporation 5.01.2600.5512OneX.DLL IEEE 802.1X supplicant library Microsoft Corporation 5.01.2600.5512rasadhlp.dll Remote Access AutoDial Helper Microsoft Corporation 5.01.2600.5512RPCRT4.dll Remote Procedure Call Runtime Microsoft Corporation 5.01.2600.5512rsaenh.dll Microsoft Enhanced Cryptographic Provider Microsoft Corporation 5.01.2600.5507rtutils.dll Routing Utilities Microsoft Corporation 5.01.2600.5512SAMLIB.dll SAM Library DLL Microsoft Corporation 5.01.2600.5512Secur32.dll Security Support Provider Interface Microsoft Corporation 5.01.2600.5512SETUPAPI.dll Windows Setup API Microsoft Corporation 5.01.2600.5512SHELL32.dll Windows Shell Common Dll Microsoft Corporation 6.00.2900.5512shfolder.dll Shell Folder Service Microsoft Corporation 6.00.2900.5512SHLWAPI.dll Shell Light-weight Utility Library Microsoft Corporation 6.00.2900.5512sortkey.nls sorttbls.nls unicode.nls USER32.dll Windows XP USER API Client DLL Microsoft Corporation 5.01.2600.5512USERENV.dll Userenv Microsoft Corporation 5.01.2600.5512uTorrent.exe µTorrent BitTorrent, Inc. 1.08.0001.12639UxTheme.dll Microsoft UxTheme Library Microsoft Corporation 6.00.2900.5512VERSION.dll Version Checking and File Installation Libraries Microsoft Corporation 5.01.2600.5512WINSTA.dll Winstation Library Microsoft Corporation 5.01.2600.5512WLDAP32.dll Win32 LDAP API DLL Microsoft Corporation 5.01.2600.5512WS2_32.dll Windows Socket 2.0 32-Bit DLL Microsoft Corporation 5.01.2600.5512WS2HELP.dll Windows Socket 2.0 Helper for Windows NT Microsoft Corporation 5.01.2600.5512wshtcpip.dll Windows Sockets Helper DLL Microsoft Corporation 5.01.2600.5512WTSAPI32.dll Windows Terminal Server SDK APIs Microsoft Corporation 5.01.2600.5512xpsp2res.dll Service Pack 2 Messages Microsoft Corporation 5.01.2600.5512 Link to comment Share on other sites More sharing options...
moogly Posted January 4, 2009 Report Share Posted January 4, 2009 Your PE log seems to be safe. I see you have the Yahoo! toolbar, maybe it's the culprit (crappy internal firewall).Anyway you can do that:1/ Run HJT for you, and check if ZA is completely uninstalled.2/ If uT continues to freeze, uninstall the Yahoo! toolbar.3/ Test uT.4/ If freezing has disappeared, you can reinstall ZA even if I would choose another firewall.5/ If freezing is still here, come back! Link to comment Share on other sites More sharing options...
zaknafane Posted January 4, 2009 Author Report Share Posted January 4, 2009 well i looked in my add/remove programs and nothing with Yahoo toolbar in there did get rid of everything yahoo but the messenger and the mail service. but still seeing the yahoo toolbar stuff in HJT after restart. btw why does it say banned under your name, i dont think i noticed that there before and if you are banned then how am i going to get a follow up on this? i wonder if the toolbar implants itself in multiple areas so that when you uninstall it, it looks as if you have it uninstalled but still has some crap still floating around in your HD. i really hate toolbar, i try not to dl it but sometimes its a force, ive had it happen. Link to comment Share on other sites More sharing options...
DreadWingKnight Posted January 4, 2009 Report Share Posted January 4, 2009 He got banned because his troubleshooting methods were off-topic for other issues that have come up.The yahoo toolbar stuff is still installed, and you may need to use hijackthis to remove the toolbar components from loading.Additionally, some of the problems may stem from the wireless adapter on your system. Check for driver updates for it as well. Link to comment Share on other sites More sharing options...
zaknafane Posted January 5, 2009 Author Report Share Posted January 5, 2009 ok completely took out yahoo toolbar via HJT and then updated driver. ill update you on how the change wentwell utorrent stayed up all night so i think the change worked. thanks to everyone who helped me Link to comment Share on other sites More sharing options...
Recommended Posts
Archived
This topic is now archived and is closed to further replies.